CVE-2021-20035CISA KEV: Actively Exploited

SonicWall SMA100 Appliances OS Command Injection Vulnerability

Published Apr 16, 2025·Updated Apr 16, 2025

Description

SonicWall SMA100 appliances contain an OS command injection vulnerability in the management interface that allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user, which could potentially lead to code execution.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free